Computer Weekly

Session fixation protection: How to stop session fixation attacks

Question: What is session fixation and how can I protect my users from it? Session fixation is a vulnerability caused by incorrectly handling user sessions in a Web application. A user’s session is ...
Ars Technica

How to kill a user's session, without being in that session?

I've got a weblogic server with a J2EE app in it that will have a set of users hitting it. I need to, as someone with admin privs to the server, be able to kill a user's session without affecting ...
ZDNet

Advertisers can track users across the Internet via TLS Session Resumption

An academic paper published last month has shed new light on a new user tracking technique that takes advantage of a legitimate mechanism associated with the TLS (Transport Layer Security) protocol ...
InfoQ

Next Generation Session Management with Spring Session

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Have you ever tried mixing oil and water?